Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
File: zRQ2kCMKRApot6iqmCefL2Xf7ig.mft (raw, json)
Hash identifier: yFnYkvVM95a6puvhwG7uU7/JOIgnMxkCNJGCnINvMyQ=
Subject key identifier: 75:C6:33:D5:97:18:E0:D7:9A:FE:EF:BB:7C:C5:33:F9:2D:52:D9:42
Authority key identifier: CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
Certificate issuer: /CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Certificate serial: 0195903CFC6615AB8853CB9711B2AB5A1309
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
Manifest number: 119A
Signing time: Thu 13 Mar 2025 16:01:10 +0000
Manifest this update: Thu 13 Mar 2025 16:01:10 +0000
Manifest next update: Fri 14 Mar 2025 16:01:10 +0000
Files and hashes: 1: vHQRV0jRUXExLLAYBdY2ODpzWoo.roa (hash: 7UhAMCr3OjHllJdnfdmjdJInrKVauXU3M4e5nn0fWuA=)
2: zRQ2kCMKRApot6iqmCefL2Xf7ig.crl (hash: 3u99ZK24+pDwVXUUvzi673CUGYGGFaexgXVM9uGlZzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3c:fc:66:15:ab:88:53:cb:97:11:b2:ab:5a:13:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd143690230a440a68b7a8aa98279f2f65dfee28
Validity
Not Before: Mar 13 16:01:10 2025 GMT
Not After : Mar 14 16:01:10 2025 GMT
Subject: CN=75c633d59718e0d79afeefbb7cc533f92d52d942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f8:35:7c:88:77:d8:cc:72:03:88:ea:fc:01:
ba:d7:1e:28:ed:17:a6:5e:45:a3:b0:2c:54:94:70:
9a:ce:83:57:5d:9e:1e:41:ae:09:f9:4c:95:38:2b:
b9:bd:d0:98:2c:9d:d7:fd:7e:b9:06:39:85:75:1b:
df:44:5f:47:0a:e4:bd:65:6a:6e:24:19:2f:76:41:
62:3b:66:cf:a8:90:66:87:bc:4f:64:c9:5a:6d:6d:
93:df:25:58:86:11:73:f5:5e:c0:7b:e8:fe:4b:78:
49:15:d3:4b:5e:c3:79:b9:4e:ac:64:06:b0:1c:24:
1c:cd:11:90:54:63:63:97:ce:40:3b:5c:bb:8b:2e:
31:07:89:bf:a0:b7:7d:50:40:d9:66:99:34:4c:2e:
75:f8:a9:e1:6f:0b:34:d7:a6:ac:3d:02:9f:8f:86:
9a:b2:20:30:c8:0d:6d:c4:85:6a:65:25:83:14:7c:
0e:aa:08:53:0b:dc:1c:4b:82:98:56:94:f7:2f:fc:
7b:a0:c4:77:2b:d2:64:36:43:f9:27:18:58:2d:f0:
65:da:ea:c5:01:02:cc:9e:8a:a0:d7:20:c3:ac:c9:
b2:55:a5:a8:76:95:c9:78:4d:49:ea:92:33:0e:d7:
d9:61:6b:af:78:06:34:19:47:2e:ba:a0:d5:97:b7:
38:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C6:33:D5:97:18:E0:D7:9A:FE:EF:BB:7C:C5:33:F9:2D:52:D9:42
X509v3 Authority Key Identifier:
keyid:CD:14:36:90:23:0A:44:0A:68:B7:A8:AA:98:27:9F:2F:65:DF:EE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRQ2kCMKRApot6iqmCefL2Xf7ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/09456e-a71c-43b3-bd40-8ee3d98cad5b/1/zRQ2kCMKRApot6iqmCefL2Xf7ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:a8:e2:b4:62:c0:c3:d8:89:03:65:7c:18:66:67:7d:50:e3:
66:72:4c:38:1d:d1:13:18:23:91:d2:0b:06:27:96:b0:eb:2e:
91:e8:c8:7a:15:ed:f0:20:9d:fb:91:74:92:8c:af:c0:08:a9:
61:4b:08:fb:95:8b:6c:86:08:08:46:80:0a:3e:fd:af:82:1b:
67:f9:74:2c:e6:bf:bc:92:a8:a8:15:04:e3:37:d2:7f:50:57:
16:59:36:47:a7:3f:29:14:dc:d9:d1:55:ec:ce:af:08:4d:67:
32:7d:53:70:ef:1e:73:8c:1d:e4:6b:87:e0:70:53:1d:f0:4a:
7e:84:be:31:ba:5c:46:6e:35:50:9b:27:b1:9a:97:df:8a:4c:
ce:e1:21:5a:ad:4d:d6:0f:6f:0b:c7:2f:b5:b2:b1:d3:7d:3c:
3f:83:e2:39:d7:8b:89:16:e5:e7:79:2e:5a:1f:c3:c7:b4:be:
61:e2:45:28:0b:fc:41:26:ff:2f:6b:d2:00:83:61:45:c2:8e:
8b:a0:0b:7c:16:ce:b5:5c:95:de:82:b9:ff:9a:1a:bf:ef:2e:
d3:3b:de:5c:23:3c:2b:09:13:10:9b:51:76:af:8f:b3:7c:8b:
87:3a:1d:31:70:0b:ae:be:19:5a:0c:be:e6:69:a6:02:f9:05:
85:34:d5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:40 2025 by rpki-client